GeneralInformation

Hostnames	li952-43.members.linode.com stagingttcapi.nanocorporation.co.uk
Domains	linode.com nanocorporation.co.uk
Cloud Provider	Linode
Cloud Region	gb-eng
Country	United Kingdom
City	London
Organization	Linode, LLC
ISP	Akamai Connected Cloud
ASN	AS63949
Operating System	Ubuntu

Vulnerabilities

Note: the device may not be impacted by all of these issues. The vulnerabilities are implied based on the software and version.

CVE-2023-44487	7.5The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
CVE-2021-3618	7.4ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
CVE-2021-23017	7.7A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process crash or potential other impact.
CVE-2019-9516	7.5Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the session dies. This can consume excess memory.
CVE-2019-9513	7.5Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU.
CVE-2019-9511	7.5Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.
CVE-2019-20372	5.3NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.

OpenPorts

22 80 443 3306

-1290947456 | 2024-04-14T15:38:29.282327

22 / tcp

SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.5
Key type: ssh-rsa
Key: AAAAB3NzaC1yc2EAAAADAQABAAABAQDN2SA/edSHti7sWl2a1lj5sMUY9WYfHHgzFNN4MQvUEukH
ZpRFFGxerUz7HqDBKo8nv38zXQOt8eNB1PEcwixU2B5fJzN+8ubquK5U2aOYn3tAbjrdBi7H6DLr
Mda8Y2BjueEdEFvnojTMA5khTIPS/1NzmLnZgJhCQTgKYc/Sekb27Fe7VPHD4/cuc0rmChmhwR0w
Xyg6AfMAU+y+IwFSQjZf+37SMoMPg9ZmpB2QTjvTIm3inZanGZ3EWQIolQU4uJHoFFRvYH6k+7bz
nFHt0zyWMsS2OpWmU46wWVm+MyU0yp7sphONCEOAR+3CIuiRI6b4mqzK+xZ0Nxe0j1Id
Fingerprint: 70:94:52:20:5f:a7:13:62:b1:17:fc:fc:7f:3f:f4:86

Kex Algorithms:
	curve25519-sha256
	curve25519-sha256@libssh.org
	ecdh-sha2-nistp256
	ecdh-sha2-nistp384
	ecdh-sha2-nistp521
	diffie-hellman-group-exchange-sha256
	diffie-hellman-group16-sha512
	diffie-hellman-group18-sha512
	diffie-hellman-group14-sha256
	diffie-hellman-group14-sha1

Server Host Key Algorithms:
	ssh-rsa
	rsa-sha2-512
	rsa-sha2-256
	ecdsa-sha2-nistp256
	ssh-ed25519

Encryption Algorithms:
	chacha20-poly1305@openssh.com
	aes128-ctr
	aes192-ctr
	aes256-ctr
	aes128-gcm@openssh.com
	aes256-gcm@openssh.com

MAC Algorithms:
	umac-64-etm@openssh.com
	umac-128-etm@openssh.com
	hmac-sha2-256-etm@openssh.com
	hmac-sha2-512-etm@openssh.com
	hmac-sha1-etm@openssh.com
	umac-64@openssh.com
	umac-128@openssh.com
	hmac-sha2-256
	hmac-sha2-512
	hmac-sha1

Compression Algorithms:
	none
	zlib@openssh.com

-707651390 | 2024-04-14T07:28:09.572091

80 / tcp

HTTP/1.1 200 OK
Server: nginx/1.15.8
Date: Sun, 14 Apr 2024 07:28:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff

759525002 | 2024-04-09T23:21:00.422142

443 / tcp

HTTP/1.1 500 Internal Server Error
Server: nginx/1.15.8
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, private
date: Tue, 09 Apr 2024 23:21:00 GMT

SSL Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:6d:d6:11:09:4c:96:d4:8d:aa:60:95:3b:ef:27:ae:24:9f
        Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Let's Encrypt, CN=R3
        Validity
            Not Before: Feb  6 22:44:13 2024 GMT
            Not After : May  6 22:44:12 2024 GMT
        Subject: CN=stagingttcapi.nanocorporation.co.uk
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (384 bit)
                pub:
                    04:68:45:59:b9:57:7e:bc:96:4c:3c:55:52:be:0a:
                    0a:94:08:f6:ee:78:e1:c2:8b:a2:97:08:fc:06:a0:
                    29:5d:30:83:17:a7:2d:0b:6f:b6:ec:19:11:4f:d8:
                    84:3e:b4:38:19:32:dd:9b:45:dc:df:d0:04:29:06:
                    42:b5:ad:26:5b:4e:de:8d:d7:53:02:bf:c7:9c:c0:
                    79:40:09:22:55:ad:a2:8d:92:e9:eb:fe:07:b6:e1:
                    ec:76:24:55:1d:b1:c1
                ASN1 OID: secp384r1
                NIST CURVE: P-384
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Basic Constraints: critical
                CA:FALSE
            X509v3 Subject Key Identifier: 
                5F:1B:37:64:89:A9:B0:A3:43:87:5B:E7:4D:CA:6F:50:A8:D0:3D:E8
            X509v3 Authority Key Identifier: 
                14:2E:B3:17:B7:58:56:CB:AE:50:09:40:E6:1F:AF:9D:8B:14:C2:C6
            Authority Information Access: 
                OCSP - URI:http://r3.o.lencr.org
                CA Issuers - URI:http://r3.i.lencr.org/
            X509v3 Subject Alternative Name: 
                DNS:stagingttcapi.nanocorporation.co.uk
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.2.1
            CT Precertificate SCTs: 
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : 3B:53:77:75:3E:2D:B9:80:4E:8B:30:5B:06:FE:40:3B:
                                67:D8:4F:C3:F4:C7:BD:00:0D:2D:72:6F:E1:FA:D4:17
                    Timestamp : Feb  6 23:44:13.909 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:45:02:21:00:A1:0D:A6:F2:8E:28:5B:EF:EE:0B:0E:
                                00:04:AB:18:65:C1:7D:F0:F4:64:08:1C:0B:97:61:77:
                                02:9B:34:8B:8B:02:20:4E:01:7C:D1:60:87:53:43:AE:
                                40:6F:DF:09:4E:73:D0:B1:A0:E3:52:4F:97:41:D4:01:
                                19:EE:B1:4B:7B:4F:69
                Signed Certificate Timestamp:
                    Version   : v1 (0x0)
                    Log ID    : A2:E2:BF:D6:1E:DE:2F:2F:07:A0:D6:4E:6D:37:A7:DC:
                                65:43:B0:C6:B5:2E:A2:DA:B7:8A:F8:9A:6D:F5:17:D8
                    Timestamp : Feb  6 23:44:13.995 2024 GMT
                    Extensions: none
                    Signature : ecdsa-with-SHA256
                                30:46:02:21:00:AA:43:31:75:79:38:FF:09:D3:06:8A:
                                79:62:E2:C6:BE:CA:0C:57:0E:CB:87:A8:CB:68:06:04:
                                47:23:C2:10:2F:02:21:00:D2:AF:DB:B3:1D:C5:A1:60:
                                FB:6A:B8:DD:A4:30:5E:73:5E:A5:32:79:4F:E6:68:0F:
                                D4:F7:0A:06:8E:CC:88:4C
    Signature Algorithm: sha256WithRSAEncryption
    Signature Value:
        ae:8c:93:de:d2:63:58:02:e9:90:05:18:4f:8c:f7:a0:ab:d9:
        59:0c:a3:47:a6:6c:e1:5d:19:db:69:d2:c9:4c:67:2f:78:c1:
        27:4f:17:7c:a2:77:34:62:2a:86:ec:8b:ce:c0:f6:01:ab:b1:
        79:3d:c4:f7:1c:74:bb:e6:5b:46:35:bd:28:41:dc:fd:ad:cc:
        6f:86:de:cd:60:11:91:38:29:43:69:52:22:42:fc:10:dc:c4:
        a6:2d:38:62:ca:2e:4e:7b:ab:7c:3c:54:df:c0:72:44:42:87:
        83:48:b5:60:a0:8b:a8:52:18:bc:c9:cd:84:70:2f:32:2a:3d:
        29:39:82:5c:3c:a1:9f:51:26:c4:1e:3e:a1:ba:65:08:f8:93:
        f7:61:b9:2f:1f:98:ee:8f:33:e8:3a:80:39:7f:52:14:46:aa:
        a9:7c:f7:4e:09:2a:7e:86:4b:e2:de:cc:95:61:d2:94:56:77:
        6e:4b:af:73:8a:c9:52:f8:6d:19:de:ef:76:72:5c:c8:e5:66:
        41:bf:a8:0d:4d:94:29:a1:b3:78:9a:32:ab:31:3c:6a:ec:4d:
        ec:9f:4a:a5:5e:3f:1b:53:8f:56:8b:e9:88:b1:da:c9:d2:f1:
        54:73:57:4e:98:8d:8a:2e:fb:b7:a3:4b:00:7e:77:f2:39:fc:
        b5:5d:b9:70

238813804 | 2024-04-14T02:38:44.539702

3306 / tcp

MySQL:
  Protocol Version: 10
  Version: 5.7.42-0ubuntu0.18.04.1
  Capabilities: 65535
  Server Language: 8
  Server Status: 2
  Extended Server Capabilities: 49663
  Authentication Plugin: mysql_native_password

213.52.129.43

Last Seen: 2024-04-14

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1290947456 | 2024-04-14T15:38:29.282327
22 / tcp

OpenSSH7.6p1 Ubuntu-4ubuntu0.5

-707651390 | 2024-04-14T07:28:09.572091
80 / tcp

nginx1.15.8

759525002 | 2024-04-09T23:21:00.422142
443 / tcp

nginx1.15.8

238813804 | 2024-04-14T02:38:44.539702
3306 / tcp

MySQL5.7.42-0ubuntu0.18.04.1

Products

Pricing

Contact Us

213.52.129.43

Last Seen: 2024-04-14

Tags:

GeneralInformation

Vulnerabilities

OpenPorts

-1290947456 | 2024-04-14T15:38:29.282327 22 / tcp

OpenSSH7.6p1 Ubuntu-4ubuntu0.5

-707651390 | 2024-04-14T07:28:09.572091 80 / tcp

nginx1.15.8

759525002 | 2024-04-09T23:21:00.422142 443 / tcp

nginx1.15.8

238813804 | 2024-04-14T02:38:44.539702 3306 / tcp

MySQL5.7.42-0ubuntu0.18.04.1

Products

Pricing

Contact Us

-1290947456 | 2024-04-14T15:38:29.282327
22 / tcp

-707651390 | 2024-04-14T07:28:09.572091
80 / tcp

759525002 | 2024-04-09T23:21:00.422142
443 / tcp

238813804 | 2024-04-14T02:38:44.539702
3306 / tcp